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DETAILED ACTION 

1 . The response of 4/30/2009 was received and considered. 

2. Claims 64-86 are pending. 



Response to Arguments 

3. Applicant's arguments filed 4/30/2009 have been fully considered but they are not persuasive. 

a. Applicant's attention is directed to the responses in the Advisory Action of 2/2/09 to 
Applicant's after- final arguments. 

b. Applicant's response (p. 9, |3) argues that the KEK in Ahonen is a subscriber-specific 
key, in contrast to Hawkes's BAK, which is not and therefore, the idea that the KEK in Ahonen is 
encrypted with a public key is not applicable to Hawkes. However, it is submitted that the 
teaching of simple key distribution is sufficient to draw a parallel between Hawkes and Ahonen. 
Briefly, "simple" is used because whereas Hawkes's invention must initially determine a way to 
share a key between to devices for encryption of another key, in Ahonen' s public-key encryption 
scheme it does not matter how the initial keys are shared and the provider of Ahonen does not 
need to store the public keys securely, as no subscriber can use another subscriber's public key to 
decrypt a message encrypted with the public key known to the provider. Referring to "drawing a 
parallel", each of Hawkes and Ahonen initially use a "top" encryption key to encrypt a "lower" 
encr3^tion key. Hawkes uses symmetric key (same key at both ends), whereas Ahonen uses 
public key (sending end has a public key, receiving end has a private key), where a message 
encr3^ted with the public key can only be decrypted by the corresponding private key. As 
described above, there are clear benefits to public key encryption over symmetric key and these 
benefits were known to a skilled artisan at the time the invention was made. Therefore, the 
rejection is maintained. 
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c. Applicant's response (p. 9, |4 - p. 10, 11) argues that Hawkes's discussion of public key 
cryptography somehow reduces or destroys the known benefits of public key cryptography as it 
would apply to Hawkes's invention. However, the cited portion of Hawkes clearly states that 
(and only that) some other mechanisms is required to provide authentication . However, Hawkes 
does not teach away from using public key cryptography for encryption and decryption. Further, 
it is well known in any art that technology generally has advantages and disadvantages and one 
having ordinary skill in the art at the time of the invention would not have construed the existence 
of a disadvantage of public key cryptography to rule out its use entirely, as suggested by 
Applicant. 

d. Applicant's response (p. 10, T[I) further argues that Ahonen "expresses similar concerns". 
However, once again, the cited portion of Ahonen clearly states that (and only that) PKI uses 
certificates for authentication . However, Ahonen does not teach away from using public key 
cryptography for encryption and decryption. Further (and again as stated above), it is well known 
in any art that technology generally has advantages and disadvantages and one having ordinary 
skill in the art at the time of the invention would not have construed the existence of a 
disadvantage of public key cr5^tography to rule out its use entirely, as suggested by Applicant. 

In this case, the usage of a public key generally suggests a detemiination of its validity. 
However, it is believed that a skilled artisan at the time of the invention would have been able to 
weigh the determination of validity against the ease of distribution and usage to find the use of 
PKI instead of symmetric key cryptography an obvious modification. 

e. Applicant's response (p. 10, T[2) suggests that the Examiner has provided no factual basis 
for the rejection. However, it is noted that Applicant's own submission of prior art (1 1/30/2004, 
regarding the Menezes reference, p. 551) discusses advantages offered by public-key (vs. 
symmetric-key) techniques. The question under consideration in this case is whether a skilled 
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artisan would have found it obvious to modify Hawkes to use public-lcey techniques in the top 
level key, rather than symmetric-key techniques. Based on the Ahonen reference actually using 
the technique and the Menezes reference (dated 1997) and further on the general ubiquity of both 
public-key and symmetric-key usage, the Examiner maintains that such a skilled artisan would 
have found it obvious to interchange the two and that such a modification would have required no 
undue experimentation and would not destroy the Hawkes reference. 



Claim Rejections - 35 USC§ 103 

4. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all obviousness 

rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set forth in section 102 of 
this title, if the differences between the subject matter sought to be patented and the prior art are such that the subject matter as 
a whole would have been obvious at the time the invention was made to a person having ordinary skill in the art to which said 
subject matter pertains. Patentability shall not be negatived by the manner in which the invention was made. 

5. Claims 64-69, 71-75, 77-80 & 82-85 are rejected under 35 U.S.C. 103(a) as being unpatentable 
over U.S. Patent Application Publication 2002/0141591, published 1 1/3/2002 to Hawkes et al. (Hawkes) 
in view of U.S. Patent Application Publication 2006/0168446 to Ahonen et al. (Ahonen). 

Regarding claim 64, Hawkes discloses a method for broadcasting encrypted multimedia content 
from a content provider (content server, ^[63) to a plurality of authorized temiinals (MS) over the air 
(T[57), comprising each terminal having a mobile equipment (ME, Fig. 4, #306) and having a secure 
processing unit (UIM, Fig. 4, #308) that securely stores a unique key (RK is stored in SUMU, Fig. 4, 
#314, 174) that is not accessible to a terminal user (SUMU discourages unauthorized access to the 
information, t65), and wherein the content provider (CS) encrypts a broadcast access key (BAK) with 
each of the unique keys (RK) to authorized a terminal having the secure processing unit securely storing a 
corresponding key to receive the encrypted multimedia content (BAK is encrypted with RK, |74), each 
terminal receiving the respective encrypted broadcast access key (BAK) over the air fi-om the content 
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provider (BAKI is received from CS, 174) and providing the respective encrypted broadcast access key 
(BAKI is passed to the UIM, f74) to the terminal's secure processing unit (UIM, 174), wherein the 
terminal's secure processing unit (UIM) decrypts the encrypted broadcast access key (BAKI) using the 
secure processing unit's unique key (RK is used in the UIM to decrypt BAK from BAKI, |74) and 
securely stores the broadcast access key (BAK is stored in SUMU, ^74), each terminal receiving short- 
term key information (SKI, |76 & |78) and encrypted multimedia content (received broadcast content, 
T[80) over the air from the content provider (CS) to the terminals (MS, *fl6 & H^O). wherein the content is 
encrj^ted with a short-term key (181), and wherein the short-term key is generated using the broadcast 
access key (BAK) and short-term key information (SKI and BAK are processed to determine SK, ^76), 
and provides the short-tenn key (SK) to the terminal's mobile equipment (SK is passed to ME, HlfSO-Sl, 
last two lines of each), and each terminal's mobile equipment decrypting the multimedia content using the 
short-term key (ME decr5^ts the received broadcast content, ||80-81, last two lines of each). Hawkes 
lacks each terminals forwarding a unique public key over the air to the content provider and lacks wherein 
the secure processing unit stores a unique private key (instead of Hawkes's RK), corresponding to the 
imique public key. However, Ahonen teaches a system where a terminal forwards a unique pubHc key 
over the air (over a 3G network, |37) to a content provider (terminal sends a registration message to a 
group controller, the message including a copy of the tcrminars public key, 138), wherein each terminal 
stores a unique private key corresponding to the unique public key (terminal creates a signature using the 
private key, 138 & 142, showing that the terminal stores the private key). Similarly to Hawkes's RK, the 
private key that corresponds to the forwarded unique public key in Ahonen is used to decrypt a received 
encr3^ted key encrypting key (KEK), which is similar to Hawkes's BAK (141). The KEK is then used to 
decr3^t a received encr5^ted traffic encrypting key (TEK, 141) which decrypts the broadcast content 
(136) that is received, possibly from the group confroUer (119). Therefore, it would have been obvious to 
one having ordinary skill in the art at the time the invention was made to modify Hawkes such that each 
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terminal (MS) forwards a unique public key over the air to the content provider (CS), wherein the secure 
processing unit (UIM) stores a unique private key (instead of Hawkes's RK), corresponding to the unique 
public key. One of ordinary skill would have been motivated to perform this modification to achieve a 
simple mechanism for key dissemination, as taught by Ahonen (|7). One of ordinary skill in the art at the 
time the invention was made would appreciate this benefit because Ahonen is using the existing, well- 
known, public key infrastructure to share a key, rather than a more complex protocol such as AKA or 
IKE. 

Regarding claim 65, Hawkes, as modified above, discloses wherein the short-term key (SK) is 
accessible to a user (Hawkes discloses that data in the ME is easily accessed, |64 and that SK is passed to 
the ME for decrypting of the broadcast content, ^[78; therefore, the SK is accessible to a user). 

Regarding claim 66, Hawkes, as modified above, discloses wherein the short-term key is changed 
by the content provider at a rate such that the cost of an unauthorized terminal user obtaining the short- 
term key from the mobile equipment exceeds the value of the short-term key to the unauthorized terminal 
user (Hawkes discloses that the SK is changed frequently such that the cost of a non-subscriber obtaining 
SK form the memory exceeds the value of SK, T|68). 

Regarding claim 67, Hawkes, as modified above, discloses wherein the secure processing unit 
(UIM) is removable from the terminal (T[66). 

Regarding claim 68, Hawkes, as modified above, discloses wherein the short-term key 
information (SKI) is the short-term key encrj^ted using the broadcast access key (SKI may be the 
encryption of SK using BSK as the key, *P6). 

Regarding claim 69, Hawkes, as modified above, discloses wherein the short-term key (SK) is 
generated by applying a cr5^tographic hash to a concatenation of the short-term key information (SKI) 
and the broadcast access key (BAK, ^76, last three lines). 
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Regarding claim 71, Hawkes, as modified above, discloses wherein at least one terminal (MS) 
comprises a mobile station (Fig. 3, #206 & 157). 

Regarding claim 72, Hawkes discloses an integrated circuit (1107) for a mobile station (MS, Fig. 
4, #300) comprising means for securely storing a unique key (RK is stored in SUMU, Fig. 4, #314, |74) 
that is not accessible to a terminal user (SUMU discourages unauthorized access to the information, ^65), 
and wherein the content provider (CS) encrypts a broadcast access key (BAK) with each of the unique 
keys (RK) to authorized an integrated circuit securely storing a corresponding key to receive the 
encrj^ted multimedia content (BAK is encr}^ted with RK, ^74 and RK is stored in the UIM, ^74), means 
(MS) for receiving the respective encrypted broadcast access key (BAK) over the air fi-om the content 
provider (BAKI is received from CS, t74), means (MS) for decryj^ting the encrypted broadcast access key 
(BAKI) using the secure processing unit's unique key (RK is used in the UIM to decrypt BAK from 
BAKI, |74) and securely storing the broadcast access key (BAK is stored in SUMU, |74), wherein the 
securely stored broadcast access key is not accessible to a user (SUMU discourages unauthorized access 
to the information, 1f65 and the BAK is stored in the SUMU, |74), means (MS) for receiving short-term 
key information (SKI, ^76 & ^78) and encrypted multimedia content (received broadcast content, IfSO) 
over the air from the content provider (CS) to the a plurality of mobile stations (Fig. 3, #206) each having 
the integrated circuit (MS, \16 & T[80, Fig. 4, #300), wherein the content is encrypted with a short-temi 
key (1[8 1), and wherein the short-term key is generated using the broadcast access key (BAK) and short- 
term key information (SKI and BAK are processed to determine SK, ^76), means (MS) for generating the 
short term key using the securely stored broadcast access key (BAK) and the broadcast short-term key 
information (SKI and BAK are processed to determine SK, |76) and means (MS) for decrypting the 
multimedia content using the short-term key (ME decrypts the received broadcast content using SK, tfSO- 
8 1 , last two lines of each). Hawkes lacks forwarding a unique public key over the air to the content 
provider and lacks securely storing a unique private key (instead of Hawkes's RK), corresponding to the 
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unique public key. However, Ahonen teaches a system where a terminal forwards a unique public key 
over the air (over a 3G network, f37) to a content provider (terminal sends a registration message to a 
group controller, the message including a copy of the terminal's public key, 138), wherein each terminal 
stores a unique private key corresponding to the unique public key (terminal creates a signature using the 
private key, T[38 & T[42, showing that the terminal stores the private key). Similarly to Hawkes's RK, the 
private key that corresponds to the forwarded unique public key in Ahonen is used to decrypt a received 
encrypted key encrj^ting key (KEK), which is similar to Hawkes's BAK (141). The KEK is then used to 
decrj^t a received encrypted traffic encrypting key (TEK, 141) which decrypts the broadcast content 
(136) that is received, possibly from the group controller (119). Therefore, it would have been obvious to 
one having ordinary skill in the art at the time the invention was made to modify Hawkes's terminal such 
that each terminal (MS) forwards a unique public key over the air to the content provider (CS), wherein 
the secure processing unit (UIM) stores a unique private key (instead of Hawkes's RK), corresponding to 
the unique public key. One of ordinary skill would have been motivated to perform this modification to 
achieve a simple mechanism for key dissemination, as taught by Ahonen (17). One of ordinary skill in 
the art at the time the invention was made would appreciate this benefit because Ahonen is using the 
existing, well-known, public key infrastructure to share a key, rather than a more complex protocol such 
as AKA or IKE. 

Regarding claim 73, Hawkes, as modified above, discloses wherein the short-term key (SK) is 
accessible to a user (Hawkes discloses that data in the ME is easily accessed, 164 and that SK is passed to 
the ME for decrypting of the broadcast content, 178; therefore, the SK is accessible to a user). 

Regarding claim 74, Hawkes, as modified above, discloses wherein the short-term key 
information (SKI) is the short-term key encr5^ted using the broadcast access key (SBsI may be the 
encr3^tion of SK using BSK as the key, 176). 
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Regarding claim 75, Hawkes, as modified above, discloses wherein the short-term key (SK) is 
generated by applying a cryptographic hash to a concatenation of the short-term key information (SKI) 
and the broadcast access key (BAK, |76, last three lines). 

Regarding claim 77, Hawkes discloses a machine-readable medium (1108) comprising code for 
securely storing a unique key (RK is stored in SUMU, Fig. 4, #314, 174) that is not accessible to a 
terminal user (SUMU discourages unauthorized access to the information, 165), and wherein the content 
provider (CS) encrypts a broadcast access key (BAK) with each of the unique keys (RK) to authorized a 
terminal securely storing a corresponding key to receive the encrypted multimedia content (BAK is 
encrj^ted with RK, 174 and RK is stored in the UIM, 174), code (MS, 1108) for receiving the respective 
encrypted broadcast access key (BAK) over the air from the content provider (BAKI is received from CS, 
174), code (MS, 1108) for decrypting the encrj^ted broadcast access key (BAKI) using the secure 
processing unit's unique key (RK is used in the UIM to decrypt BAK from BAKI, 174) and securely 
storing the broadcast access key (BAK is stored in SUMU, 174), wherein the securely stored broadcast 
access key is not accessible to a user (SUMU discourages unauthorized access to the information, 165 and 
the BAK is stored in the SUMU, 174), code (MS, 1108) for receiving short-term key information (SKI, 
176 & 178) and encrypted multimedia content (received broadcast content, 180) over the air from the 
content provider (CS) to the a plurality of terminals (Fig. 3, #206) each having a integrated circuit (MS, 
176, ISO & 1107, Fig. 4, #300), wherein the multimedia content is encrypted with a short-term key (181), 
and wherein the short-term key is generated using the broadcast access key (BAK) and short-term key 
information (SKI and BAK are processed to determine SK, 176), code (MS, 1108) for generating the short 
term key using the securely stored broadcast access key (BAK) and the broadcast short-term key 
information (SKI and BAK are processed to determine SK, 176) and code (MS, 1108) for decrypting the 
multimedia content using the short-term key (ME decrypts the received broadcast content using SK, 1180- 
8 1 , last two lines of each). Hawkes lacks forwarding a unique public key over the air to the content 
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provider and lacks securely storing a unique private key (instead of Hawkes's RK), corresponding to the 
unique public key. However, Ahonen teaches a system where a terminal forwards a unique public key 
over the air (over a 3G network, |37) to a content provider (terminal sends a registration message to a 
group controller, the message including a copy of the terminal's public key, 138), wherein each terminal 
stores a unique private key corresponding to the unique public key (terminal creates a signature using the 
private key, |38 & ^42, showing that the terminal stores the private key). Similarly to Hawkes's RK, the 
private key that corresponds to the forwarded unique public key in Ahonen is used to decrypt a received 
encrj^ted key encrypting key (KEK), which is similar to Hawkes's BAK (^41). The KEK is then used to 
decrj^t a received encr5^ted traffic encrypting key (TEK, |41) which decrypts the broadcast content 
(1f36) that is received, possibly from the group controller (119). Therefore, it would have been obvious to 
one having ordinary skill in the art at the time the invention was made to modify Hawkes's terminal such 
that each terminal (MS) comprises code that forwards a unique public key over the air to the content 
provider (CS), wherein the terminal includes code for storing securely a unique private key (instead of 
Hawkes's RK), corresponding to the unique public key. One of ordinary skill would have been motivated 
to perform this modification to achieve a simple mechanism for key dissemination, as taught by Ahonen 
(17). One of ordinary skill in the art at the time the invention was made would appreciate this benefit 
because Ahonen is using the existing, well-known, public key infi^structure to share a key, rather than a 
more complex protocol such as AKA or IKE. 

Regarding claim 78, Hawkes, as modified above, discloses wherein the short-term key (SK) is 
accessible to a user (Hawkes discloses that data in the ME is easily accessed, T[64 and that SK is passed to 
the ME for decrypting of the broadcast content, 178; therefore, the SK is accessible to a user). 

Regarding claim 79, Hawkes, as modified above, discloses wherein the short-term key 
information (SKI) is the short-term key encr5^ted using the broadcast access key (SBsI may be the 
encr3^tion of SK using BSK as the key, 176). 
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Regarding claim 80, Hawkes, as modified above, discloses wherein the short-term key (SK) is 
generated by applying a cryptographic hash to a concatenation of the short-term key information (SKI) 
and the broadcast access key (BAK, |76, last three lines). 

Regarding claim 82, Hawkes discloses an apparatus (MS, Fig. 4, #300) for receiving encrypting 
multimedia content broadcast over the air (Fig. 3, #206) from a content provider (CS, Tf63) to a plurality 
of authorized apparatuses (Fig. 3, #206) comprising a mobile equipment (ME, Fig. 4, #306) configured to 
decrjqit the multimedia content using the short-term key (ME decrypts the received broadcast content 
using SK, TITISG-Sl, last two lines of each), wherein the multimedia content is encrypted with the short- 
term key (SK, ^81), and wherein the short-term key is generated using the broadcast access key (BAK) 
and short-term key information (SKI and BAK are processed to determine SK, 1176), and a secure 
processing unit (UIM, Fig. 4, #308) configure to securely store a unique key (RK is stored in SUMU, Fig. 
4, #3 14, |74) that is not accessible to a terminal user (SUMU discourages unauthorized access to the 
information, 165), and wherein the content provider (CS) encrypts a broadcast access key (BAK) with the 
unique key (RK) to authorize an apparatus having the secure processing unit (authorize the MS) securely 
storing the corresponding key (RK) to receive the encrypted multimedia content (BAK is encrypted with 
RK, |74 and RK is stored in the UIM, |74), receive the respective encrypted broadcast access key (BAK) 
over the air (Fig. 3, #206) from the content provider (BAKI is received from CS, 174), decrypt the 
encrypted broadcast access key (BAKI; RK is used in the UIM to decrypt BAK from BAKI, 174) and 
securely store the broadcast access key (BAK is stored in SUMU, 174), wherein the securely stored 
broadcast access key is not accessible to a user (SUMU discourages unauthorized access to the 
information, 165 and the BAK is stored in the SUMU, 174), receive the short-term key information (SKI) 
broadcast over the air from the content provider (CS sends SKI to MS, 176) and generating the short-term 
key using the securely stored broadcast access key (BAK) and broadcast short-term key information (SKI 
and BAK are processed to determine SK, 176). Hawkes lacks the mobile equipment forwarding a unique 
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public key over the air to the content provider and lacks the secure processing unit securely storing a 
unique private key (instead of Hawkes's RK), corresponding to the unique public key. However, Ahonen 
teaches a system where a terminal forwards a unique public key over the air (over a 3G network, f 37) to a 
content provider (terminal sends a registration message to a group controller, the message including a 
copy of the terminal's public key, 138), wherein each terminal stores a unique private key corresponding 
to the unique public key (terminal creates a signature using the private key, |38 & ^42, showing that the 
terminal stores the private key). Similarly to Hawkes's RK, the private key that corresponds to the 
forwarded unique public key in Ahonen is used to decrypt a received encrypted key encrypting key 
(KEK), which is similar to Hawkes's BAK (141). The KEK is then used to decrypt a received encrypted 
traffic encr5^ting key (TEK, ^[41) which decrypts the broadcast content (1136) that is received, possibly 
fi-om the group controller (1119). Therefore, it would have been obvious to one having ordinary skill in the 
art at the time the invention was made to modify Hawkes's terminal such that the mobile equipment (ME) 
forwards a unique public key over the air to the content provider (CS) and the secure processing unit 
(UIM) stores a unique private key (instead of Hawkes's RK), corresponding to the unique public key. 
One of ordinary skill would have been motivated to perform this modification to achieve a simple 
mechanism for key dissemination, as taught by Ahonen (|7). One of ordinary skill in the art at the time 
the invention was made would appreciate this benefit because Ahonen is using the existing, well-known, 
public key infrastructure to share a key, rather than a more complex protocol such as AKA or IKE. 

Regarding claim 83, Hawkes, as modified above, discloses wherein the short-term key (SK) is 
accessible to a user (Hawkes discloses that data in the ME is easily accessed, 164 and that SK is passed to 
the ME for decrypting of the broadcast content, 178; therefore, the SK is accessible to a user). 

Regarding claim 84, Hawkes, as modified above, discloses wherein the short-term key 
information (SKI) is the short-term key encr5^ted using the broadcast access key (SBsI may be the 
encr3^tion of SK using BSK as the key, 176). 
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Regarding claim 85, Hawkes, as modified above, discloses wherein the short-term key (SK) is 
generated by applying a cryptographic hash to a concatenation of the short-term key information (SKI) 
and the broadcast access key (BAK, |76, last three lines). 

6. Claims 70, 76, 81 & 86 are rejected under 35 U.S.C. 103(a) as being unpatentable over Hawkes 
and Ahonen, as applied to claims 69, 75, 80 & 85 above, in further view of A pplied Cryptography. 
Second Edition by Bruce Schneier (Schneier). 

Regarding claims 70, 76, 81 & 86, Hawkes, as modified above, discloses wherein the short-term 
information is at least partly unpredictable, but lacks explicitly where it is a random value. However, 
Schneier discloses that good keys for encryption are random, such that all possible values are equally 
likely (i.e. unpredictable, p. 173, §Random Keys, ^l). Therefore, it would have been obvious to one 
having ordinary skill in the art at the time the invention was made to modify Hawkes invention, as 
modified above, such that the short-term information is a random value. One of ordinary skill in the art 
would have been motivated to perform such a modification to enhance the security of the encrypted data 
such that the key is unpredictable via its randomness, as taught by Schneier. 

Conclusion 

Any inquiry concerning this communication or earlier communications from the examiner should 
be directed to MICHAEL J. SIMITOSKI whose telephone number is (571)272-3841. The examiner can 
normally be reached on Monday - Thursday, 6:45 a.m. - 4:15 p.m.. 

If attempts to reach the examiner by telephone are imsuccessfiil, the examiner's supervisor, Edan 
Orgad can be reached on (571)272-7884. The fax phone number for the organization where this 
application or proceeding is assigned is 571-273-8300. 
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